Job Description
Work closely with IT, security engineers, and external clients to ensure security controls are implemented and maintained.
Communicate compliance requirements effectively to technical and non-technical stakeholders.
Conduct risk assessments and track compliance with FISMA, NIST 800-53, HIPAA, and FedRAMP security controls.
Maintain security documentation, including SSPs, CAPs, Contingency Plans, and other compliance artifacts.
Perform continuous monitoring, identify security gaps, and recommend remediation strategies.
Support internal and external audits, ensuring all required security evidence is collected and documented.
Lead the management, configuration, and optimization of ServiceNow GRC, ensuring alignment with security frameworks and regulatory requirements.
Develop and automate workflows for compliance tracking, risk assessments, control monitoring, and audit management.
Continuously improve and refine ServiceNow GRC functionalities to enhance efficiency and reporting.
Provide training and support to internal teams on the use of ServiceNow GRC for compliance activities.
Extensive experience managing and optimizing ServiceNow GRC to support and enhance our security compliance program. This role will play a key part in configuring, maintaining, and improving ServiceNow GRC workflows, ensuring compliance with government security standards such as FISMA, NIST 800-53, HIPAA, and FedRAMP.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Required Skills & Experience
Bachelor’s degree in management information systems, Computer Science, Business Administration, or related field (or equivalent experience).
2 years of experience in IT security, risk assessment, and compliance within a government contract environment.
Extensive hands-on experience managing and configuring ServiceNow GRC.
Security Certifications (one or more preferred): CISA, CISM, CRISC, CISSP, or SSCP.
Strong knowledge of GRC/IRM systems for compliance tracking, risk management, and audit readiness.
Experience in FedRAMP and FISMA, including security package development and control validation.
Understanding of hybrid, multi-tenant infrastructure security, including network, server, database, and application security.
Excellent verbal and written communication skills, with the ability to bridge technical and business perspectives.
Nice to Have Skills & Experience
Security Certifications (one or more preferred): CISA, CISM, CRISC, CISSP, or SSCP.
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.